backend
Pass
Audited by Gen Agent Trust Hub on Mar 6, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill content is purely educational and instructional, providing templates for backend development without any malicious intent or hidden commands.
- [SAFE]: Placeholders are consistently used for potentially sensitive information such as database passwords and API keys (e.g.,
${DB_PASSWORD},your-secret-key), ensuring that no actual credentials are leaked. - [SAFE]: Command examples provided for project management and builds are standard industry practices (e.g.,
go build,npm install,cargo test) and do not perform unauthorized actions or include suspicious flags. - [SAFE]: The skill includes sections on security best practices, such as input validation, SQL injection prevention, and security scanning tools like bandit and pip-audit, demonstrating a focus on safe coding practices.
- [SAFE]: The mechanism for determining the technical stack by scanning for manifest files (e.g.,
package.json,Cargo.toml) is a legitimate and safe application of tool use to provide context-relevant development advice.
Audit Metadata